These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2016-9831 affects libming’s listswf tool and involves a heap-based buffer overflow in parseSWF_RGBA while handling crafted SWF content. NVD rates the issue 7.8 High with a CWE-119 memory-safety weakness. The practical risk is greatest anywhere untrusted SWF files are parsed or inspected, especially in workflows that process files from external sources.
CVE-2016-9829 is a high-severity heap-based buffer overflow in libming’s listswf tool, specifically in parseSWF_DEFINEFONT. A crafted SWF file can trigger memory corruption, and NVD rates the issue 7.8 HIGH with potential impact to confidentiality, integrity, and availability. The affected range in the supplied NVD data extends through libming 0.4.7.
CVE-2016-9828 is a denial-of-service issue in libming’s listswf tool. A crafted SWF file can trigger a NULL pointer dereference in dumpBuffer (read.c), causing the program to crash. The issue is documented by NVD and linked third-party advisories, with the CVE published on 2017-02-17 and later modified on 2026-05-13.
CVE-2016-9827 affects the listswf tool in libming 0.4.7. A crafted SWF file can trigger a buffer over-read in _iprintf() from outputtxt.c, resulting in denial of service. The public record was published in February 2017, with related advisory references appearing in early December 2016.